Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
Oracle HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-0197)
CVE-2019-0197
CWE-444
Medium
Apache HTTP Server Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-0197)
CVE-2019-0197
CWE-444
Medium
Apache HTTP Server Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2019-0220)
CVE-2019-0220
CWE-706
Medium
Apache Tomcat Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-0221)
CVE-2019-0221
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-0557)
CVE-2019-0557
CWE-707
Medium
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-0558)
CVE-2019-0558
CWE-707
Medium
Oracle HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
Oracle Database Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
Nexus Repository Manager Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11629)
CVE-2019-11629
CWE-707
Medium
osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11537)
CVE-2019-11537
CWE-707
Medium
PHP Out-of-bounds Read Vulnerability (CVE-2019-11050)
CVE-2019-11050
CWE-125
Medium
Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11199)
CVE-2019-11199
CWE-707
Medium
jQuery Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358)
CVE-2019-11358
CWE-1321
Medium
Joomla Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358)
CVE-2019-11358
CWE-1321
Medium
Drupal Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358)
CVE-2019-11358
CWE-1321
Medium
WebLogic Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358)
CVE-2019-11358
CWE-1321
Medium
ProjectSend Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11533)
CVE-2019-11533
CWE-707
Medium
Atlassian Jira CVE-2019-11583 Vulnerability (CVE-2019-11583)
CVE-2019-11583
-
Medium
PHP Out-of-bounds Read Vulnerability (CVE-2019-11047)
CVE-2019-11047
CWE-125
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11584)
CVE-2019-11584
CWE-707
Medium
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11585)
CVE-2019-11585
CWE-601
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11586)
CVE-2019-11586
CWE-352
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11587)
CVE-2019-11587
CWE-352
Medium
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11588)
CVE-2019-11588
CWE-352
Medium
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11589)
CVE-2019-11589
CWE-601
Medium
WeBid Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11592)
CVE-2019-11592
CWE-707
Medium
PHP Integer Overflow or Wraparound Vulnerability (CVE-2019-11048)
CVE-2019-11048
CWE-190
Medium
PHP Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-11045)
CVE-2019-11045
CWE-138
Medium
WebLogic Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10219)
CVE-2019-10219
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10383)
CVE-2019-10383
CWE-707
Medium
WordPress Ultimate Member Plugin CVE-2019-10271 Vulnerability (CVE-2019-10271)
CVE-2019-10271
-
Medium
Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10321)
CVE-2019-10321
CWE-352
Medium
Artifactory Missing Authorization Vulnerability (CVE-2019-10322)
CVE-2019-10322
CWE-862
Medium
Artifactory Missing Authorization Vulnerability (CVE-2019-10323)
CVE-2019-10323
CWE-862
Medium
Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10324)
CVE-2019-10324
CWE-352
Medium
Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-10352)
CVE-2019-10352
CWE-22
Medium
Jenkins Missing Authorization Vulnerability (CVE-2019-10354)
CVE-2019-10354
CWE-862
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10401)
CVE-2019-10401
CWE-707
Medium
PHP Use of Uninitialized Resource Vulnerability (CVE-2019-11038)
CVE-2019-11038
CWE-908
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10402)
CVE-2019-10402
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10403)
CVE-2019-10403
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10404)
CVE-2019-10404
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10405)
CVE-2019-10405
CWE-707
Medium
Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10406)
CVE-2019-10406
CWE-707
Medium
Roundcube Unspesificed Vulnerability (CVE-2019-10740)
CVE-2019-10740
-
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10909)
CVE-2019-10909
CWE-707
Medium
Elgg URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11016)
CVE-2019-11016
CWE-601
Medium
WebLogic CVE-2018-2625 Vulnerability (CVE-2018-2625)
CVE-2018-2625
-
Medium
Oracle JRE CVE-2018-2618 Vulnerability (CVE-2018-2618)
CVE-2018-2618
-
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7320)
CVE-2017-7320
CWE-707
Medium
Java Denial of Service (DoS) Vulnerability (CVE-2018-11212)
CVE-2018-11212
-
Medium
MyBB URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10678)
CVE-2018-10678
CWE-601
Medium
Jboss EAP Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-10862)
CVE-2018-10862
CWE-22
Medium
Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2018-10889)
CVE-2018-10889
CWE-532
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-10890)
CVE-2018-10890
CWE-200
Medium
Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10934)
CVE-2018-10934
CWE-707
Medium
WebLogic CVE-2018-11039 Vulnerability (CVE-2018-11039)
CVE-2018-11039
-
Medium
e107 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-11127)
CVE-2018-11127
CWE-352
Medium
Joomla Improper Input Validation Vulnerability (CVE-2018-11321)
CVE-2018-11321
CWE-20
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-10545)
CVE-2018-10545
CWE-200
Medium
Joomla Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-11324)
CVE-2018-11324
CWE-362
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11326)
CVE-2018-11326
CWE-707
Medium
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-11327)
CVE-2018-11327
CWE-200
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11328)
CVE-2018-11328
CWE-707
Medium
Opencart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-11495)
CVE-2018-11495
CWE-22
Medium
e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-11734)
CVE-2018-11734
CWE-707
Medium
Apache HTTP Server CVE-2018-11763 Vulnerability (CVE-2018-11763)
CVE-2018-11763
-
Medium
PHP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10547)
CVE-2018-10547
CWE-707
Medium
MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10382)
CVE-2018-10382
CWE-707
Medium
Apache Tomcat URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-11784)
CVE-2018-11784
CWE-601
Medium
Jboss EAP Improper Input Validation Vulnerability (CVE-2018-1000873)
CVE-2018-1000873
CWE-20
Medium
Jenkins Session Fixation Vulnerability (CVE-2018-1000409)
CVE-2018-1000409
CWE-384
Medium
MyBB Improper Privilege Management Vulnerability (CVE-2018-1000503)
CVE-2018-1000503
CWE-269
Medium
Grafana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1000816)
CVE-2018-1000816
CWE-707
Medium
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1000862)
CVE-2018-1000862
CWE-200
Medium
«
1
...
153
154
155
...
181
»
